• DocumentCode
    858711
  • Title

    Modeling and Management of Firewall Policies

  • Author

    Al-Shaer, Ehab S. ; Hamed, Hazem H.

  • Author_Institution
    DePaul University
  • Volume
    1
  • Issue
    1
  • fYear
    2004
  • fDate
    4/1/2004 12:00:00 AM
  • Firstpage
    2
  • Lastpage
    10
  • Abstract
    Firewalls are core elements in network security. However, managing firewall rules, especially for enterprise networks, has become complex and error-prone. Firewall filtering rules have to be carefully written and organized in order to correctly implement the security policy. In addition, inserting or modifying a filtering rule requires thorough analysis of the relationship between this rule and other rules in order to determine the proper order of this rule and commit the updates. In this paper we present a set of techniques and algorithms that provide automatic discovery of firewall policy anomalies to reveal rule conflicts and potential problems in legacy firewalls, and anomaly-free policy editing for rule insertion, removal, and modification. This is implemented in a user-friendly tool called ¿Firewall Policy Advisor.¿ The Firewall Policy Advisor significantly simplifies the management of any generic firewall policy written as filtering rules, while minimizing network vulnerability due to firewall rule misconfiguration.
  • Keywords
    Defense industry; High level languages; Home automation; IP networks; Information filtering; Information filters; Matched filters; National security; Technology management; Telecommunication traffic;
  • fLanguage
    English
  • Journal_Title
    Network and Service Management, IEEE Transactions on
  • Publisher
    ieee
  • ISSN
    1932-4537
  • Type

    jour

  • DOI
    10.1109/TNSM.2004.4623689
  • Filename
    4623689